CERT mailing list archives
Alerts Users to Holiday Phishing Scams and Malware Campaigns
From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Wed, 30 Nov 2016 13:14:31 -0600
U.S. Department of Homeland Security US-CERT National Cyber Awareness System: US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns [ https://www.us-cert.gov/ncas/current-activity/2016/11/30/US-CERT-Alerts-Users-Holiday-Phishing-Scams-and-Malware-Campaigns ] 11/30/2016 12:40 PM EST Original release date: November 30, 2016 US-CERT reminds users to remain vigilant when browsing or shopping online this holiday season. Ecards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed email messages and fraudulent posts on social networking sites may request support for phony causes. To avoid seasonal campaigns that could result in security breaches, identity theft, or financial loss, users are encouraged to take the following actions: * Avoid following unsolicited links or downloading attachments from unknown sources. * Refer to our security Tips to learn more about Shopping Safely Online [ http://www.us-cert.gov/cas/tips/ST07-001.html ] and Avoiding Social Engineering and Phishing Attacks [ http://www.us-cert.gov/cas/tips/ST04-014.html ]. * Read the Federal Trade Commission's blog on Don’t let scammers take away your holiday cheer [ https://www.consumer.ftc.gov/blog/dont-let-scammers-take-away-your-holiday-cheer ]. * Visit the Federal Trade Commission's Consumer Information page on Charity Scams [ http://www.consumer.ftc.gov/features/feature-0011-charity-scams ]. If you believe you are a victim of a holiday phishing scam or malware campaign, consider the following actions: * File a complaint [ http://www.ic3.gov/default.aspx ] with the FBI's Internet Crime Complaint Center (IC3). * Report the attack to the police and file a report [ https://www.ftccomplaintassistant.gov/ ] with the Federal Trade Commission. * Contact your financial institution immediately and close any accounts that may have been compromised. Watch for any unexplainable charges to your account. * Immediately change any passwords you might have revealed and do not use that password in the future. Avoid reusing passwords on multiple sites. ________________________________________________________________________ This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ http://www.us-cert.gov/privacy/ ] policy. ________________________________________________________________________ A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () ncas us-cert gov to your address book. OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- Alerts Users to Holiday Phishing Scams and Malware Campaigns US-CERT (Nov 30)